CVE-2019-12303

CVE-2019-12303

EPSS 2.0%

In Rancher 2 through 2.2.3, Project owners can inject additional fluentd configuration to read files or execute arbitrary commands inside the fluentd container.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forums.rancher.com/c/announcements https://forums.rancher.com/t/rancher-release-v2-2-4-addresses-rancher-cve-2019-12274-and-cve-2019-12303/14466